Defending Against Phishing: Effective Phishing Incident Response Using Employees, Incident Responders, and Intelligence.

SecTor 2016

Presented by: Mike Saurbaugh
Date: Wednesday October 19, 2016
Time: 14:40 - 15:10
Location: Hall G
Track: Sponsor Track

As the security industry has continued to under invest in the human element of security, phishing has become the top attack vector for cyber criminals. Breaches continue to occur in record numbers, identification takes an exorbitantly long time, and the most preferred target is an organization’s people. Effective phishing defense and incident response involves empowering humans to provide vetted intelligence into your incident response teams. In addition, human-verified phishing intelligence provides security teams with more than just indicators, but enriched intelligence and context uncovering criminal infrastructure. SOC and IR teams can then delve into incidents that matter most because they know where to focus their efforts. Effective phishing incident response is a holistic approach involving employees, human-verified phishing intelligence, and well-prepared security analysts and responders. Mike Saurbaugh will provide attendees with guidance for a successful phishing incident response program.

Links

Mike Saurbaugh

Mike is the Director of Technical Alliances with PhishMe. Prior to PhishMe, Mike spent nearly two decades in financial services and was the head of information security for 12 years. Mike is also a Faculty member with IANS Research where he has provided clients with information security insight for the past 5-years. Mike was involved from the onset with Security Current when it launched and served as the research director leading a number of strategic projects for global security vendors and CISOs. Also, Mike is a mentor with cybersecurity accelerator, MACH37, and he owns a security consulting LLC where he has conducted independent advisory and risk assessment engagements. Mike holds a Master’s of Science in Information Assurance from Walsh College and is a member of two college information security curriculum advisory committees.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats